#SPDX-License-Identifier: MIT-0
---
# tasks file for k8s-cert-manager

- name: Add helm repository
  kubernetes.core.helm_repository:
    name: jetstack
    repo_url: https://charts.jetstack.io
    state: present

- name: Copy value files
  ansible.builtin.copy:
    src: files/values.yaml
    dest: "{{ confdir }}/cert-manager-values.yaml"

- name: Copy clusterissuer-staging yaml
  ansible.builtin.copy:
    src: files/clusterissuer-staging.yaml
    dest: "{{ confdir }}/"

- name: Copy clusterissuer-prod yaml
  ansible.builtin.copy:
    src: files/clusterissuer-prod.yaml
    dest: "{{ confdir }}/" 

- name: Install cert-manager
  kubernetes.core.helm:
    name: cert-manager
    chart_ref: jetstack/cert-manager
    namespace: cert-manager
    create_namespace: true
    atomic: true
    kubeconfig: /etc/rancher/k3s/k3s.yaml
    wait: yes
    timeout: 600s
    values:
      installCRDs: true
    values_files:
      "{{ confdir }}/cert-manager-values.yaml"
    state: present

- name: Create staging clusterissuer for letsencrypt
  kubernetes.core.k8s:
    kubeconfig: /etc/rancher/k3s/k3s.yaml
    state: present
    src: "{{ confdir }}/clusterissuer-staging.yaml"

- name: Create prod clusterissuer for letsencrypt
  kubernetes.core.k8s:
    kubeconfig: /etc/rancher/k3s/k3s.yaml
    state: present
    src: "{{ confdir }}/clusterissuer-prod.yaml"